access from the wan to the single IP lan

Started by pietro87, October 08, 2020, 10:18:51 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
October 08, 2020, 10:18:51 AM

Goodmorning everyone,
i just started using opnsense.
I need to enter via public ip (static) to a specific ip of the lan that acts as a mail server. But I'm doing something wrong.

I set up a firewall rule
IPv4 TCP   *   *   WAN indirizzo   7000 (MMS/UDP)   *   *   IN_WAN

and after port-forw:
WAN   TCP   *   *   *   7000 (MMS/UDP)   192.168.1.102   443 (HTTPS)   POSTA_IN_FROM_WAN

from the firewall logs I see that I reach my public ip but I don't get an answer ....

I'm doing something wrong, it's not clear to me how to create external access to a local ip machine ... thanks for your help.
October 08, 2020, 01:47:07 PM #1
Do you have multiple public IP's? In that case you'll want to configure the mail server with a 1:1 NAT.

Since UDP has no session control, the return packets could have a public source IP that is different from the initial destination, which will confuse the client no end.

Bart...
Print
Go Up Pages1
User actions